DevSecOps Engineer
Job Location:
Job Location:
Washington, DC - USA
Monthly Salary:
Not Disclosed
Monthly Salary:
Posted on:
14 days ago
Posted on:
Vacancies:
1 Vacancy
Vacancies:
Job Summary
Job Title: Mid-Level DevSecOps Engineer
Duration: 5years
Duration: 5years
Location: Remote preferred may needed onsite upon request at Washington DC 20515
Hours Per Week: 40 Hours
Ceipal ID: FEDAWS012SN
Job Code: CB26-RFQ0012
Hours Per Week: 40 Hours
Ceipal ID: FEDAWS012SN
Job Code: CB26-RFQ0012
Scope of Project:
Client maintains a hybrid cloud infrastructure environment supported by established DevSecOps practices security baselines and federal compliance frameworks.
To advance its modernization initiatives client seeks DevSecOps Engineering Services to augment existing engineering staff and expand upon established infrastructure automation CI/CD pipeline capabilities container orchestration and security-hardened delivery practices.
The objective is to extend and mature its existing infrastructure automation and secure software delivery capabilities.
Responsibilities:
Maintain extend and improve existing Terraform and OpenTofu codebases used to provision and manage clients cloud and hybrid infrastructure
Write modular reusable configurations and manage state files and remote backends
Develop and maintain Ansible playbooks and roles to automate system configuration compliance enforcement patch management and application deployment
Build maintain and improve GitHub Actions workflows to automate build test security scanning and deployment processes
Incorporate security gates including static analysis (SAST) dependency scanning secrets detection and policy-as-code validation
Support containerized application delivery using Docker for image builds and Kubernetes for orchestration
Write and maintain Dockerfiles following image hardening best practices
Manage Kubernetes manifests and Helm charts
Support namespace and RBAC configuration
Assist with cluster health monitoring and troubleshooting
Integrate security practices throughout the software delivery lifecycle (Shift-Left security)
Incorporate SAST/DAST scanning tools into pipelines
Enforce CIS benchmarks and client security baselines on infrastructure and container configurations
Support NIST SP 800-53 and FISMA compliance requirements
Produce documentation to support audit and assessment activities
Participate in stand-ups sprint planning technical review sessions peer reviews and change management processes
Write modular reusable configurations and manage state files and remote backends
Develop and maintain Ansible playbooks and roles to automate system configuration compliance enforcement patch management and application deployment
Build maintain and improve GitHub Actions workflows to automate build test security scanning and deployment processes
Incorporate security gates including static analysis (SAST) dependency scanning secrets detection and policy-as-code validation
Support containerized application delivery using Docker for image builds and Kubernetes for orchestration
Write and maintain Dockerfiles following image hardening best practices
Manage Kubernetes manifests and Helm charts
Support namespace and RBAC configuration
Assist with cluster health monitoring and troubleshooting
Integrate security practices throughout the software delivery lifecycle (Shift-Left security)
Incorporate SAST/DAST scanning tools into pipelines
Enforce CIS benchmarks and client security baselines on infrastructure and container configurations
Support NIST SP 800-53 and FISMA compliance requirements
Produce documentation to support audit and assessment activities
Participate in stand-ups sprint planning technical review sessions peer reviews and change management processes
Required Technical Skills
Hands-on experience with Terraform and OpenTofu including module development remote state management and workspace management
Proficiency with Ansible including playbook and role development dynamic inventories and Ansible Vault for secrets management
Demonstrated experience designing and maintaining GitHub Actions workflows including reusable workflows matrix builds and security gate integration
Working knowledge of Docker image authoring and hardening Kubernetes manifest and Helm chart management and container security scanning tools (e.g. Trivy Grype or equivalent)
Familiarity with SAST tools (e.g. Semgrep Checkov tfsec) secrets scanning (e.g. Gitleaks Detect-Secrets) and policy-as-code frameworks (e.g. OPA/Rego)
Proficiency with Git-based workflows including branching strategies pull request reviews and protected branch enforcement
Proficiency with Ansible including playbook and role development dynamic inventories and Ansible Vault for secrets management
Demonstrated experience designing and maintaining GitHub Actions workflows including reusable workflows matrix builds and security gate integration
Working knowledge of Docker image authoring and hardening Kubernetes manifest and Helm chart management and container security scanning tools (e.g. Trivy Grype or equivalent)
Familiarity with SAST tools (e.g. Semgrep Checkov tfsec) secrets scanning (e.g. Gitleaks Detect-Secrets) and policy-as-code frameworks (e.g. OPA/Rego)
Proficiency with Git-based workflows including branching strategies pull request reviews and protected branch enforcement
Preferred Skills
Experience in a federal or highly regulated environment
Familiarity with NIST SP 800-53 FISMA and FedRAMP compliance requirements
Cloud platform experience (AWS)
Experience with secrets management tools (e.g. HashiCorp Vault)
Scripting proficiency in Python and Bash
Familiarity with NIST SP 800-53 FISMA and FedRAMP compliance requirements
Cloud platform experience (AWS)
Experience with secrets management tools (e.g. HashiCorp Vault)
Scripting proficiency in Python and Bash
Additional Requirement
Security Clearance: Public Trust Tier 2 clearance level required
Background check conducted through Capitol Police to access the client network
Background check conducted through Capitol Police to access the client network
V Group Inc. is a NJ-based IT Services and Products Company with its business strategically categorized in various Business Units including Public Sector Enterprise Solutions Professional Services Ecommerce Projects and Products. Within Public Sector business unit we cater IT Professional Services to Federal State and Local. We have multiple awards/contracts with 30 states including but not limited to NY CA FL GA MD MI NC OH OR CO CT TN PA TX VA NM VT and WA. If you are considering applying for a position with V Group or partnering with us on a position please feel free to contact me for any questions you may have regarding our services and the advantages we can offer you as a consultant.
Please share my contact information with others working in Information Technology.
